Local Vulnerability in Integrated Lights Out Manager CLI on Sun Blaze and SPARC T3 Servers
CVE-2011-3522

Currently unrated

Key Information:

Vendor: Oracle
Status: Sun Fire X4270 M2; Sun Blade X6440 M2; Sun Blade X6275; Sparc T3-4
Vendor: CVE Published:; 18 October 2011

Summary

A security flaw in SysFW 8.0 across certain SPARC T3, Netra SPARC T3, Sun Fire, and Sun Blade servers exposes local users to potential confidentiality breaches through the Integrated Lights Out Manager Command Line Interface (CLI). This vulnerability allows unauthorized actions that may compromise sensitive information, emphasizing the need for appropriate security measures and timely updates to mitigate risks.

References

http://www.oracle.com/technetwork/topics/security/cpuoct2...

x_refsource_CONFIRM

http://secunia.com/advisories/46509

third-party-advisoryx_refsource_SECUNIA

http://www.securitytracker.com/id?1026221

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Oct 18, 2011
Vulnerability Reserved
Sep 16, 2011